Multiple session validity check issues in several administration functionalities of Invigo Automatic Device Management (ADM) through 5.0 allow remote attackers to read potentially sensitive data hosted by the application.
References
Link | Resource |
---|---|
https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf | Third Party Advisory |
Configurations
History
27 Mar 2021, 03:03
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:invigo:automatic_device_management:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
CWE | CWE-668 | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
CWE | CWE-668 | |
CPE | cpe:2.3:a:invigo:automatic_device_management:*:*:*:*:*:*:*:* | |
References | (CONFIRM) https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf - Third Party Advisory | |
CWE | CWE-668 | |
CPE | cpe:2.3:a:invigo:automatic_device_management:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
References | (CONFIRM) https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf - Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
CWE | CWE-668 | |
CPE | cpe:2.3:a:invigo:automatic_device_management:*:*:*:*:*:*:*:* | |
References | (CONFIRM) https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf - Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
References | (CONFIRM) https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf - Third Party Advisory | |
CWE | CWE-668 | |
CPE | cpe:2.3:a:invigo:automatic_device_management:*:*:*:*:*:*:*:* | |
References | (CONFIRM) https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf - Third Party Advisory | |
CWE | CWE-668 | |
CPE | cpe:2.3:a:invigo:automatic_device_management:*:*:*:*:*:*:*:* | |
References | (CONFIRM) https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf - Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
CPE | cpe:2.3:a:invigo:automatic_device_management:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
References | (CONFIRM) https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf - Third Party Advisory | |
CPE | cpe:2.3:a:invigo:automatic_device_management:*:*:*:*:*:*:*:* | |
CWE | CWE-668 | |
References | (CONFIRM) https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf - Third Party Advisory | |
References | (CONFIRM) https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf - Third Party Advisory | |
CWE | CWE-668 | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
CPE | cpe:2.3:a:invigo:automatic_device_management:*:*:*:*:*:*:*:* | |
CPE | cpe:2.3:a:invigo:automatic_device_management:*:*:*:*:*:*:*:* | |
CWE | CWE-668 | |
References | (CONFIRM) https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf - Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
References | (CONFIRM) https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf - Third Party Advisory | |
CPE | cpe:2.3:a:invigo:automatic_device_management:*:*:*:*:*:*:*:* | |
CWE | CWE-668 | |
References | (CONFIRM) https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf - Third Party Advisory | |
CWE | CWE-668 | |
CPE | cpe:2.3:a:invigo:automatic_device_management:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
CWE | CWE-668 | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
References | (CONFIRM) https://www.on-x.com/sites/default/files/security_advisory_-_multiple_vulnerabilities_-_invigo_adm.pdf - Third Party Advisory | |
CPE | cpe:2.3:a:invigo:automatic_device_management:*:*:*:*:*:*:*:* | |
CWE | CWE-668 | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
25 Mar 2021, 20:18
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
CPE | ||
CWE | ||
CWE | ||
CPE | ||
CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
CPE | ||
CWE | ||
New CVE | ||
CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
CPE | ||
CWE | ||
CPE | ||
CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
CWE | ||
CPE | ||
CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
CWE | ||
CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
CWE | ||
CPE | ||
CPE | ||
CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
CWE | ||
CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
CWE | ||
CPE | ||
CWE | ||
CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
CWE | ||
CPE | ||
CPE | ||
CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
CPE | ||
CWE | ||
CVSS |
v2 : v3 : |
v2 : unknown
v3 : unknown |
Information
Published : 2021-03-25 20:15
Updated : 2023-12-10 13:55
NVD link : CVE-2020-10581
Mitre link : CVE-2020-10581
CVE.ORG link : CVE-2020-10581
JSON object : View
Products Affected
invigo
- automatic_device_management
CWE
CWE-668
Exposure of Resource to Wrong Sphere